Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NVT2OyDMKxCL4jMuZ3cUPRqUxfc.roa
File: NVT2OyDMKxCL4jMuZ3cUPRqUxfc.roa (raw, json)
Hash identifier: vw9AeQT81Z+vuDdmuR7JShJlydnPnXJoLAuV+NckT4E=
Subject key identifier: 35:54:F6:3B:20:CC:2B:10:8B:E2:33:2E:67:77:14:3D:1A:94:C5:F7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1AB8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NVT2OyDMKxCL4jMuZ3cUPRqUxfc.roa
Signing time: Wed 29 Sep 2021 02:45:40 +0000
ROA not before: Wed 29 Sep 2021 02:45:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 180.176.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6840 (0x1ab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:45:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3554F63B20CC2B108BE2332E6777143D1A94C5F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:82:98:fe:30:67:6e:12:d4:fc:94:1f:91:f4:
2e:a3:6d:fa:ec:ed:0e:68:be:43:7f:41:36:57:c9:
e3:8f:c9:35:b3:7f:93:45:39:06:ad:09:73:f3:6a:
6d:f3:6f:b8:09:93:dd:dd:4f:02:2d:d7:08:91:b7:
b2:fc:69:d9:aa:b0:a4:bb:ec:62:dd:24:51:b0:7a:
b3:12:41:2a:a3:6a:f5:61:c1:7d:e3:20:b1:9e:2e:
c4:cc:b4:9a:16:9e:b0:f5:18:3a:a5:cc:dd:4e:5b:
cd:d2:7e:26:ad:95:be:49:7c:cf:07:e4:ab:46:31:
bf:bc:3e:12:8d:cd:8e:6d:5d:ae:41:8a:3d:a7:e3:
1a:df:2e:d2:06:1c:9f:cb:10:31:49:3c:2b:9d:63:
f4:ac:ce:e4:ad:b0:6c:1b:c9:a6:a2:83:16:53:3e:
3b:07:85:aa:47:e1:6f:27:7a:e5:79:c3:3c:b0:b9:
7b:5a:83:31:a1:43:7d:f3:df:b7:08:aa:ad:b9:a8:
71:aa:92:23:e2:fa:3f:d5:47:9f:8c:cb:20:bb:b2:
df:62:2f:e3:aa:21:32:d5:77:86:be:fc:dc:bb:3d:
23:81:e8:19:60:bc:ff:42:f4:5f:d4:ff:a3:a9:33:
79:7e:1a:dd:38:66:ae:18:60:2c:96:03:aa:6b:96:
90:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:54:F6:3B:20:CC:2B:10:8B:E2:33:2E:67:77:14:3D:1A:94:C5:F7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NVT2OyDMKxCL4jMuZ3cUPRqUxfc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.4.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:e4:d3:44:4e:68:cb:92:ac:10:a5:79:21:41:be:59:37:45:
a0:d8:ac:ce:c0:43:3f:1e:6e:e5:7b:fe:45:17:9b:da:d3:a7:
e4:70:7d:ac:ca:55:3f:95:1b:c8:5e:74:d5:5b:eb:65:75:1d:
fa:3d:42:52:c2:1d:6b:72:3b:fe:5a:12:a6:c8:32:4f:15:13:
bd:d0:4a:76:6c:5f:0f:3b:56:b9:82:12:b4:92:79:1e:99:f8:
71:69:f4:e7:1b:8b:af:dc:f8:ae:c4:d8:77:5b:65:f5:27:f6:
fa:95:25:d8:b8:86:a0:57:c1:91:41:12:d2:42:fc:6f:62:54:
46:26:02:96:c6:e8:f4:60:c1:5a:52:27:a5:51:68:67:bc:11:
40:2d:58:f6:4c:5e:78:0f:65:35:67:3f:43:f9:2f:cc:a2:ad:
59:90:e5:f3:36:9f:a6:c1:a8:c6:33:b9:13:0f:22:9d:db:03:
f1:65:04:1d:ba:a6:dd:41:50:97:2a:cc:00:9d:a2:86:31:e3:
ac:79:7f:61:6c:30:23:0c:d6:a1:a6:d7:1f:78:eb:5c:10:b8:
86:da:a0:f2:a2:a8:c9:33:bd:b9:4b:fa:2e:b3:c4:f6:c1:49:
a1:c3:ac:59:b5:5a:05:0e:36:d7:55:74:2c:2c:0d:3e:26:98:
29:87:cf:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:27 2023 by rpki-client on console-fra.rpki-client.org